The critical secret code that allows iOS devices to boot up has leaked online — and Apple has confirmed it’s real

An anonymous source posted the private code of iBoot, the software that allows iOS to run on iPhones and iPads, on GitHub.

The code could allow people to exploit the security of iOS devices.

Apple has confirmed that the leaked code is genuine.

The code that allows iOS devices to boot up – and that Apple makes sure to keep private – has leaked online.

A report from Motherboard said the code, aptly named iBoot, could be retrieved on GitHub, a hosting service for software developers to publish and share code.

In a statement provided to Business Insider, Apple said that the code was “old.” Here’s Apple on the leak:

“Old source code from three years ago appears to have been leaked, but by design the security of our products doesn’t depend on the secrecy of our source code. There are many layers of hardware and software protections built into our products, and we always encourage customers to update to the newest software releases to benefit from the latest protections.”

The vast majority of iPhone users are now using iOS 10 and iOS 11, which both contain code that is newer than what was leaked.

The code seems to belong to an older version of iOS (presumably iOS 9, released in 2015) but parts of it might be used in iOS 11, the latest version.

iBoot essentially turns on iPhones and other iOS devices. It’s the very first thing activated when someone pushes the sleep/wake button. It loads, verifies that the kernel – the heart of the operating system’s code – is signed by Apple, then executes the code and takes you to the lock screen.

Jonathan Levin, the chief technology officer of the software security firm Technologeeks who has written several books on the subject, told Motherboard that “this is the biggest leak in history” and said it appeared that the code – whose source is unknown – was legit.